Uploaded image for project: 'ZooKeeper'
  1. ZooKeeper
  2. ZOOKEEPER-2221

Zookeeper JettyAdminServer server should start on configured IP.

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 3.5.0
    • Fix Version/s: 3.5.1, 3.6.0
    • Component/s: server
    • Labels:
      None

      Description

      Currently JettyAdminServer starting on "0.0.0.0" IP. "0.0.0.0" means "all IP addresses on the local machine". So, if your webserver machine has two ip addresses, 192.168.1.1(private) and 10.1.2.1(public), and you allow a webserver daemon like apache to listen on 0.0.0.0, it will be reachable at both of those IPs.

      This is security issue. webserver should be accessible from only configured IP

        Attachments

        1. ZOOKEEPER-2221_1.patch
          4 kB
          Surendra Singh Lilhore
        2. ZOOKEEPER-2221.patch
          5 kB
          Surendra Singh Lilhore
        3. ZOOKEEPER-2221.patch
          5 kB
          Surendra Singh Lilhore
        4. ZOOKEEPER-2221.patch
          4 kB
          Surendra Singh Lilhore
        5. ZOOKEEPER-2221.patch
          1 kB
          Surendra Singh Lilhore

          Activity

            People

            • Assignee:
              surendrasingh Surendra Singh Lilhore
              Reporter:
              surendrasingh Surendra Singh Lilhore
            • Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: